-
Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.
av/edr
-
Nimcrypt2 - PE packer/loader designed to bypass AV/EDR
Nimcrypt2 is yet another PE packer/loader designed to bypass AV/EDR. It is an improvement on my original Nimcrypt project, with the main improvements being the use of direct syscalls and the ability to load regular PE files as well as raw shellcode. Before going any further, I must acknowledge...- itsMe
- Thread
- av/edr bypass designed nimcrypt2 packer/loader
- Replies: 0
- Forum: Pentesting
-
SysWhispers3 - AV/EDR evasion via direct system calls.
SysWhispers helps with evasion by generating header/ASM files implants can use to make direct system calls. Why on earth didn't I create a PR to SysWhispers2? The reason for SysWhispers3 to be a standalone version are many, but the most important are: SysWhispers3 is the de-facto "fork"...- itsMe
- Thread
- av/edr calls. direct evasion system syswhispers3 via
- Replies: 0
- Forum: Pentesting
-
SysWhispers2: AV/EDR evasion via direct system calls
SysWhispers helps with AV/EDR evasion by generating header/ASM files implants can use to make direct system calls. All core syscalls are supported and example generated files available in the example-output/ folder. Difference Between SysWhispers 1 and 2 The usage is almost identical to...- itsMe
- Thread
- av/edr calls direct evasion system syswhispers2: via
- Replies: 0
- Forum: Pentesting
av/edr
